The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service (system crash) via a VAPIC synchronization operation involving a page-end address.
Exploitability
AV:LAC:HAu:NImpact
C:CI:CA:C6.2/AV:L/AC:H/Au:N/C:C/I:C/A:C